Client Questionnaire & Audit Manager

Job Description

Client Security Questionnaires & Inquiries Maintain and update a centralized repository of standardized responses to client security questionnaires. Respond to client questionnaires accurately and in a timely manner, aligning with current security controls, certifications, and policies. Act as the primary point of contact for all client security-related inquiries. Collaborate with internal teams (IT, Legal, Compliance, InfoSec) to gather necessary documentation and responses. Security Terms Review for Contracts Draft and review security-related terms and conditions for inclusion in client MSAs (Master Service Agreements). Provide actionable feedback to the Legal team to ensure contractual obligations align with company security standards. Audit Management Lead and coordinate internal and external audits (e.g., ISO 27001, HIPAA, NIST). Serve as the liaison with external auditors and clients conducting audits. Prepare, compile, and provide audit documentation and evidence of compliance. Work with control owners to create and monitor remediation plans for identified risks. Ensure corrective actions are implemented and completed within designated timelines. Cyber Insurance Respond to cyber insurance questionnaires with accurate information based on implemented controls and certifications. Process Improvement Identify and implement opportunities to streamline and improve the audit and questionnaire response processes. Develop templates and workflows to increase efficiency and consistency. Continuously refine internal audit and compliance methodologies to meet evolving client and regulatory requirements. Stakeholder & Client Engagement Collaborate with internal stakeholders (IT, Legal, Compliance, Senior Leadership) to ensure timely and accurate responses to audits and client inquiries. Engage with clients and auditors to effectively represent and communicate the organizationsecurity posture. Provide recommendations to management on enhancing security practices and compliance alignment .